CVE-2020-8632

In cloud-init through 19.4, rand_user_password in cloudinit/config/cc_set_passwords.py has a small default pwlen value, which makes it easier for attackers to guess passwords.

Date published : 2020-02-05

https://bugs.launchpad.net/ubuntu/+source/cloud-init/+bug/1860795

https://github.com/canonical/cloud-init/pull/189